CVE-2025-10841

CVE-2025-10841 affects code-projects Online Bidding System 1.0. The vulnerability resides in the file /administrator/weweee.php, where manipulation of the ID parameter leads to SQL injection. It is exploitable remotely and has been publicly disclosed. Multiple sources consistently describe an SQL...

CVE-2025-10837

The CVE-2025-10837 entry concerns code-projects Simple Food Ordering System 1.0. Affects the file /ordersimple/order.php, where manipulation of the ID parameter enables cross-site scripting (XSS). The attack can be initiated remotely, and the exploit has been publicly disclosed. The connected sou...

CVE-2025-10837 code-projects Simple Food Ordering System order.php cross site scripting

A security vulnerability has been detected in code-projects Simple Food Ordering System 1.0. Affected by this vulnerability is an unknown functionality of the file /ordersimple/order.php. The manipulation of the argument ID leads to cross site scripting. The attack may be initiated remotely. The...

Code-Projects Online Hotel Reservation System In PHP SQL注入漏洞

Code-Projects Online Hotel Reservation System In PHP is a Code-Projects open source online hotel reservation system. A SQL injection vulnerability exists in Code-Projects Online Hotel Reservation System In PHP version 1.0, which originates from an incorrect manipulation of the parameter confirm i...

PT-2025-39122

Name of the Vulnerable Software and Affected Versions code-projects Online Bidding System version 1.0 Description A flaw exists in code-projects Online Bidding System that allows for SQL injection. The issue is located in the file /administrator/wew.php and involves manipulation of the ID argumen...

CVE-2025-10813 code-projects Hostel Management System index.php sql injection

A vulnerability was found in code-projects Hostel Management System 1.0. Affected is an unknown function of the file /justines/admin/modreports/index.php. The manipulation of the argument Home results in sql injection. It is possible to launch the attack remotely. The exploit has been made public...

CVE-2025-10812 code-projects Hostel Management System index.php sql injection

A vulnerability has been found in code-projects Hostel Management System 1.0. This impacts an unknown function of the file /justines/admin/modamenities/index.php?view=view. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-10812

CVE-2025-10812 affects the code-projects Hostel Management System v1.0. The vulnerability is a SQL injection in the file /justines/admin/mod_amenities/index.php?view=view, triggered by manipulation of the ID parameter. It can be exploited remotely and details have been publicly disclosed. Public ...

CVE-2025-10811 code-projects Hostel Management System index.php sql injection

A flaw has been found in code-projects Hostel Management System 1.0. This affects an unknown function of the file /justines/admin/modcomments/index.php?view=view. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been...

CVE-2025-10811 code-projects Hostel Management System index.php sql injection

A flaw has been found in code-projects Hostel Management System 1.0. This affects an unknown function of the file /justines/admin/modcomments/index.php?view=view. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from remote. The exploit has been...

CVE-2025-10802

A flaw has been found in code-projects Online Bidding System 1.0. Affected is an unknown function of the file /administrator/remove.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used...

CVE-2025-10802 code-projects Online Bidding System remove.php sql injection

A flaw has been found in code-projects Online Bidding System 1.0. Affected is an unknown function of the file /administrator/remove.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used...

CVE-2025-10802

The CVE affects code-projects Online Bidding System 1.0, specifically the file /administrator/remove.php. The vulnerability arises from manipulation of the ID parameter, enabling SQL injection in an unknown function and allowing remote initiation of an attack. Multiple connected sources confirm t...

CVE-2025-10802 code-projects Online Bidding System remove.php sql injection

A flaw has been found in code-projects Online Bidding System 1.0. Affected is an unknown function of the file /administrator/remove.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used...

CVE-2025-10799 code-projects Hostel Management System index.php sql injection

A security flaw has been discovered in code-projects Hostel Management System 1.0. The affected element is an unknown function of the file /justines/admin/modreservation/index.php?view=view. Performing manipulation of the argument ID results in sql injection. Remote exploitation of the attack is...

CVE-2025-10797

The CVE-2025-10797 entry concerns code-projects Hostel Management System 1.0. The vulnerability affects the file /justines/index.php where manipulation of the log_email parameter enables SQL injection. Multiple connected sources (CNVD, CNNVD, Red Hat, CVE records) confirm remote exploitation pote...

CVE-2025-10796 code-projects Hostel Management System login.php sql injection

A vulnerability was found in code-projects Hostel Management System 1.0. This vulnerability affects unknown code of the file /justines/admin/login.php. The manipulation of the argument email results in sql injection. The attack can be launched remotely. The exploit has been made public and could ...

CVE-2025-10795 code-projects Online Bidding System bidupdate.php sql injection

A vulnerability has been found in code-projects Online Bidding System 1.0. This affects an unknown part of the file /administrator/bidupdate.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may ...

CVE-2025-10795 code-projects Online Bidding System bidupdate.php sql injection

A vulnerability has been found in code-projects Online Bidding System 1.0. This affects an unknown part of the file /administrator/bidupdate.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may ...

CVE-2025-10795

The CVE-2025-10795 entry concerns code-projects Online Bidding System 1.0. A vulnerability exists in /administrator/bidupdate.php where manipulating the ID parameter enables SQL injection. The issue is remotely exploitable and has been disclosed publicly; multiple sources (NVD/CNVD/CVE lists and ...